Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
HPE Aruba Networking

HPE Aruba Networking Vendor Cyber Rating & Cyber Score

hpe.com

HPE Aruba Networking designs and delivers Mobility-Defined Networks that empower a new generation of tech-savvy users.


HAN A.I CyberSecurity Scoring

HAN
Company Information
Website:http://hpe.com/networking
Employees number:5,155
Number of followers:264,363
NAICS:5415
Industry Type:IT Services and IT Consulting
Homepage:hpe.com
HAN Risk Score (AI oriented)
Between 750 and 799
logo
HANIT Services and IT Consulting
Updated:
10/04/2026
750/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
HAN Global Score (TPRM)
xxxx
logo
HANIT Services and IT Consulting
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

HAN
HANFair
Current Score
750Baa (FAIR)
01000
2 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
752Before Incident
JUNE 2026
752Before Incident
MAY 2026
751Before Incident
APRIL 2026
755Before Incident
Vulnerability
10 Apr 2026HAN
HPE Aruba Networking: HPE Aruba Private 5G Platform Vulnerability Enables Credential Theft Attacks

HPE Aruba Private 5G Core Vulnerability Exposes Admin Credentials via Phishing-Style Attack

750After Incident
CRITICAL-5
ARU1775831194
HPE Aruba Private 5G Core Vulnerability Exposes Admin Credentials via Phishing-Style Attack A critical vulnerability in HPE Aruba Networking’s Private 5G Core On-Prem platform, tracked as CVE-2026-23818, has been disclosed, enabling attackers to steal administrative credentials through a sophisticated phishing-style exploit. The flaw, detailed in HPE security bulletin HPESBNW05032EN_US, affects the platform’s graphical user interface (GUI) and stems from an open redirect vulnerability in the login workflow. The issue arises from inadequate sanitization of redirect parameters, allowing threat actors to manipulate post-authentication navigation. Attackers exploit this by crafting malicious URLs that appear legitimate, tricking users typically network administrators into clicking them. Upon interaction, the victim is redirected to an attacker-controlled server hosting a fake login page designed to mimic the authentic Aruba interface. Unsuspecting users re-enter their credentials, which are then captured before being seamlessly redirected back to the real login page, making the attack difficult to detect. The impact of CVE-2026-23818 is severe for enterprises relying on private 5G infrastructure. Compromised credentials could grant attackers unauthorized access to network configurations, enable interception or manipulation of sensitive communications, disrupt services, or facilitate lateral movement within corporate environments. Since the attack relies on social engineering rather than malware, traditional endpoint security tools may fail to detect it. HPE has released patches to address the vulnerability, urging organizations to update affected systems immediately. The flaw underscores the growing threat to user-facing interfaces in private 5G deployments, where attackers increasingly target authentication workflows to bypass security controls.
INCIDENT DETAILS -
TYPE
Phishing-Style Exploit
IMPACT
Data Compromised: Administrative credentialsSystems Affected: HPE Aruba Private 5G Core On-Prem GUIOperational Impact: Unauthorized access to network configurations, interception/manipulation of sensitive communications, service disruption, lateral movement
DATA BREACH
Type Of Data Compromised: Administrative credentialsSensitivity Of Data: High (Network admin credentials)
MARCH 2026
754Before Incident
FEBRUARY 2026
754Before Incident
JANUARY 2026
754Before Incident
DECEMBER 2025
753Before Incident
NOVEMBER 2025
753Before Incident
OCTOBER 2025
752Before Incident
SEPTEMBER 2025
752Before Incident
AUGUST 2025
751Before Incident
NOVEMBER 2021
772Before Incident
Breach
01 Nov 2021HAN
Aruba, a Hewlett Packard Enterprise company

Aruba Central Data Breach

717After Incident
CRITICAL-55
ARU826111122
Aruba Central network monitoring platforms suffered from a data breach incident that allowed a threat actor to access collected data about monitored devices and their locations. The exposed information contained two datasets, one for network analytics and the other for Aruba Central's 'Contract Tracing' feature. "One dataset ("network analytics") includes network telemetry information about Wi-Fi client devices connected to customer Wi-Fi networks for the majority of Aruba Central customers. Another dataset called "contact tracing" comprised location-specific information on Wi-Fi client devices, such as which devices were close to other Wi-Fi client devices. The compromised information includes MAC addresses, IP addresses, device operating system type and hostname, and some usernames. The contact tracing data also included users’ Access Point (AP) name, proximity, and duration of time connected to that AP. They said it's not necessary to change passwords, change encryption keys, or modify your network setup because security-sensitive data was not compromised. In order to stop reoccurring problems, HPE said they are modifying how they safeguard and keep access keys.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
MAC addressesIP addressesdevice operating system typehostnameusernamesAccess Point (AP) nameproximityduration of time connected to the APNetwork analytics datasetContact tracing dataset
DATA BREACH
Network telemetry informationLocation-specific information

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for HAN ?
?
What was HAN's A.I Rankiteo Cyber Score in June 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in May 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in April 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in March 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in February 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in January 2026 ?
?
What was HAN's A.I Rankiteo Cyber Score in December 2025 ?
?
What was HAN's A.I Rankiteo Cyber Score in November 2025 ?
?
What was HAN's A.I Rankiteo Cyber Score in October 2025 ?
?
What was HAN's A.I Rankiteo Cyber Score in September 2025 ?
?
What was HAN's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on HAN's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with HAN ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view HAN's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
HPE Aruba Networking Cyber Scoring History | Rankiteo